Vulnerabilities > Cisco > Unified Callmanager > 3.3.5
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-07-15 | CVE-2006-5278 | Heap Buffer Overflow vulnerability in Cisco products Integer overflow in the Real-Time Information Server (RIS) Data Collector service (RisDC.exe) in Cisco Unified Communications Manager (CUCM, formerly CallManager) before 20070711 allow remote attackers to execute arbitrary code via crafted packets, resulting in a heap-based buffer overflow. | 10.0 |
2007-07-15 | CVE-2006-5277 | Heap Buffer Overflow vulnerability in Cisco products Off-by-one error in the Certificate Trust List (CTL) Provider service (CTLProvider.exe) in Cisco Unified Communications Manager (CUCM, formerly CallManager) before 20070711 allow remote attackers to execute arbitrary code via a crafted packet that triggers a heap-based buffer overflow. | 9.3 |
2007-04-03 | CVE-2007-1833 | Remote Denial Of Service vulnerability in Cisco Unified CallManager And Unified Server The Skinny Call Control Protocol (SCCP) implementation in Cisco Unified CallManager (CUCM) 3.3 before 3.3(5)SR2a, 4.1 before 4.1(3)SR4, 4.2 before 4.2(3)SR1, and 5.0 before 5.0(4a)SU1 allows remote attackers to cause a denial of service (loss of voice services) by sending crafted packets to the (1) SCCP (2000/tcp) or (2) SCCPS (2443/tcp) port. | 5.0 |